First Viewpoint

Wednesday, January 03, 2007

Securing your wireless network

Just right now I can log into 3 different wireless networks from my laptop. It always strikes me why there is no regulation to enforce the industry to make sure the consumer is protected. Of course, you can not assume everybody knows how to configure a router so they just go with the default. But eh eh that is not good, although in a utopia nothing evil can happen, right?
Here is a nicely written article from the US government about this issue.

To summarize:

1) turn the wireless capability off when not used for a prolonged period. Or turn off the identifier broadcasting after your computer is connected. You don't need it, as long as you don't want to list the available wireless networks. Then nobody else knows it is there, but yourself who knows for a fact it is there.
2) Set a strong administrator password. Although this is not crucial as most routers do not allow remote access by default, but only by a computer which is connected physically to port #1.
3) Set at least a 128 WPA encryption. WEP is extremely weak but still is something if you don't have WPA as an option. If you can, go with WPA 2 which supports a mixed of AES and TKIP. No need to mention that you should use a strong phrase with a length of at least 8 random characters with it.
4) Change the SSID to identify your network.
5) Change the default channel (b or g): best is to use 1 or 11, as the default is 6 and so by using 1 or 11 you have the least channel overlap (resulting a better connection speed) with what everybody else is using.

0 Comments:

Post a Comment

<< Home